This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/8d03af01-f239-4a1f-81cd-4106bebb2a22/0/F8DF40E4C95F9EBF81453870736995E91BBB92F7.mft File: F8DF40E4C95F9EBF81453870736995E91BBB92F7.mft (raw, json) Hash identifier: 9NbPvuyBaLFuglWUImjUnQ6ibg0vfE+RB+03WI6bJ1Q= Subject key identifier: B9:C0:EC:1D:EE:C1:6E:F5:EE:A0:5B:9D:72:56:31:E5:26:F8:CE:BA Authority key identifier: F8:DF:40:E4:C9:5F:9E:BF:81:45:38:70:73:69:95:E9:1B:BB:92:F7 Certificate issuer: /CN=F8DF40E4C95F9EBF81453870736995E91BBB92F7 Certificate serial: 6BB891EE9B181912C741155808497257CE6D9FDA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F8DF40E4C95F9EBF81453870736995E91BBB92F7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8d03af01-f239-4a1f-81cd-4106bebb2a22/0/F8DF40E4C95F9EBF81453870736995E91BBB92F7.mft Manifest number: 02A3 Signing time: Sat 20 Dec 2025 16:20:02 +0000 Manifest this update: Sat 20 Dec 2025 16:15:02 +0000 Manifest next update: Wed 24 Dec 2025 04:00:02 +0000 Files and hashes: 1: 3130332e3234302e3131312e302f32342d3234203d3e203538383139.roa (hash: LrqOLogV2pqJm1JD+jgGDFnoqudanN5BU7ote6ngSrk=) 2: 3130332e3234302e3131302e302f32342d3234203d3e203538383139.roa (hash: oOGj5tlcgCuOuQ6ORsdrfX31aFz0B3FN8fvqd8j5T/A=) 3: 3130332e3234302e3130382e302f32322d3234203d3e203538383139.roa (hash: XeC/h72IOu7dA+NCUWie+KTWNqBhpQyXbuk3uFJs7XQ=) 4: F8DF40E4C95F9EBF81453870736995E91BBB92F7.crl (hash: DYMVCmZpUAlJN6J+ZsX97lyOanHDUU0EGCGeOg6DYeM=) 5: 3130332e3234302e3130382e302f32342d3234203d3e203538383139.roa (hash: R48/rgbNCjjp4lN8u0WLGy1+WSaMSCFGbeTToOjbzmw=) 6: 3130332e3234302e3130392e302f32342d3234203d3e203538383139.roa (hash: yBAmYPcX6Hw9g9sbt5o4PVcLnMdm+J2PfCuUjXQ0T5g=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8d03af01-f239-4a1f-81cd-4106bebb2a22/0/F8DF40E4C95F9EBF81453870736995E91BBB92F7.crl rsync://repo-rpki.idnic.net/repo/8d03af01-f239-4a1f-81cd-4106bebb2a22/0/F8DF40E4C95F9EBF81453870736995E91BBB92F7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F8DF40E4C95F9EBF81453870736995E91BBB92F7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Dec 2025 04:00:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:b8:91:ee:9b:18:19:12:c7:41:15:58:08:49:72:57:ce:6d:9f:da Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F8DF40E4C95F9EBF81453870736995E91BBB92F7 Validity Not Before: Dec 20 16:15:02 2025 GMT Not After : Dec 24 04:00:02 2025 GMT Subject: CN=B9C0EC1DEEC16EF5EEA05B9D725631E526F8CEBA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:f5:7b:80:48:c2:16:17:e0:8b:24:ec:c1:e9: bb:86:d2:2e:2b:4b:04:8b:67:a5:44:05:f3:0d:5b: f9:37:ca:7e:c5:d1:68:dd:4f:9f:e8:ff:3a:27:ea: d5:e2:c4:28:cb:7e:fe:be:de:04:ef:38:7f:da:cf: c6:d1:2c:28:34:b0:9a:22:0c:34:65:37:46:03:08: e6:4e:c5:34:53:cb:82:6b:a9:b7:70:7d:be:f6:f1: ca:15:37:2f:05:8d:68:a8:2e:3d:f5:b1:72:84:bc: 7c:d8:c0:15:4d:3d:e9:cb:c8:9d:86:b4:9a:c7:06: fb:8d:25:f6:96:de:33:81:f9:d3:aa:81:74:6a:04: 69:8f:e6:87:cf:d7:9f:ee:69:88:f7:c4:12:5a:8a: 2c:47:9d:21:03:45:95:c6:a6:b5:af:47:9d:32:c4: d8:08:f7:66:c4:06:76:d7:83:2a:5c:6d:49:40:06: 7d:d2:a0:fd:b5:33:c2:09:f4:70:5d:cb:58:65:8b: 4f:68:5d:ae:91:00:94:50:55:42:71:31:b5:8e:30: 7a:0a:df:ed:e4:3d:1c:40:3e:8e:e1:8b:cf:3a:ab: d1:fd:d3:8e:35:96:61:5f:6b:01:65:29:2e:ea:2e: 6a:4f:e7:c3:31:44:ae:17:86:cf:51:8f:a4:14:17: 0e:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:C0:EC:1D:EE:C1:6E:F5:EE:A0:5B:9D:72:56:31:E5:26:F8:CE:BA X509v3 Authority Key Identifier: keyid:F8:DF:40:E4:C9:5F:9E:BF:81:45:38:70:73:69:95:E9:1B:BB:92:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8d03af01-f239-4a1f-81cd-4106bebb2a22/0/F8DF40E4C95F9EBF81453870736995E91BBB92F7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F8DF40E4C95F9EBF81453870736995E91BBB92F7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8d03af01-f239-4a1f-81cd-4106bebb2a22/0/F8DF40E4C95F9EBF81453870736995E91BBB92F7.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8e:b3:04:32:38:3c:f5:87:36:8f:a3:57:36:ce:53:88:86:b9: 1d:15:6e:32:6d:ba:16:bf:ec:1f:eb:b6:73:3d:49:39:55:5b: 60:2f:28:f8:50:94:35:3a:dc:7e:47:f4:5c:44:af:b1:f9:51: 7a:39:55:30:bf:3d:b7:c7:1b:02:c4:8c:24:4e:16:3a:68:1e: cc:07:b2:04:f4:e4:ad:0c:b3:df:e5:8c:a8:2c:48:db:26:79: 4b:52:77:2c:5f:eb:eb:48:63:81:83:fb:b6:23:f7:cd:54:15: aa:32:7c:c7:06:d7:55:13:82:74:93:cd:eb:6e:fc:4c:6b:5f: 18:92:9b:20:f5:75:99:a0:36:d5:23:fd:70:e8:f9:17:a5:14: 2f:3c:35:13:aa:89:9f:45:bb:5e:8e:4d:d5:97:4e:cb:bc:35: a6:7d:27:11:76:d2:cf:95:86:ba:3d:72:81:8a:c2:6a:35:e8: 7f:61:e9:4e:fe:c0:29:1c:f4:dd:37:3b:fd:34:1c:a0:30:e4: a4:3c:1a:f9:4b:c7:62:32:4b:b3:73:73:85:65:07:f8:67:96: f4:37:e6:cf:df:61:fb:4c:2d:c3:62:9b:cb:a1:a7:e5:d0:ea: 5e:a3:79:d7:23:db:c8:67:f8:15:c0:06:7d:79:91:6d:27:a9: 1d:1f:95:aa -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUa7iR7psYGRLHQRVYCElyV85tn9owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjhERjQwRTRDOTVGOUVCRjgxNDUzODcwNzM2OTk1RTkx QkJCOTJGNzAeFw0yNTEyMjAxNjE1MDJaFw0yNTEyMjQwNDAwMDJaMDMxMTAvBgNV BAMTKEI5QzBFQzFERUVDMTZFRjVFRUEwNUI5RDcyNTYzMUU1MjZGOENFQkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCn9XuASMIWF+CLJOzB6buG0i4r SwSLZ6VEBfMNW/k3yn7F0WjdT5/o/zon6tXixCjLfv6+3gTvOH/az8bRLCg0sJoi DDRlN0YDCOZOxTRTy4Jrqbdwfb728coVNy8FjWioLj31sXKEvHzYwBVNPenLyJ2G tJrHBvuNJfaW3jOB+dOqgXRqBGmP5ofP15/uaYj3xBJaiixHnSEDRZXGprWvR50y xNgI92bEBnbXgypcbUlABn3SoP21M8IJ9HBdy1hli09oXa6RAJRQVUJxMbWOMHoK 3+3kPRxAPo7hi886q9H90441lmFfawFlKS7qLmpP58MxRK4Xhs9Rj6QUFw5TAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUucDsHe7BbvXuoFudclYx5Sb4zrowHwYDVR0j BBgwFoAU+N9A5Mlfnr+BRThwc2mV6Ru7kvcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 ZDAzYWYwMS1mMjM5LTRhMWYtODFjZC00MTA2YmViYjJhMjIvMC9GOERGNDBFNEM5 NUY5RUJGODE0NTM4NzA3MzY5OTVFOTFCQkI5MkY3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjhERjQwRTRDOTVGOUVCRjgxNDUzODcwNzM2OTk1RTkxQkJC OTJGNy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vOGQwM2FmMDEtZjIzOS00YTFmLTgx Y2QtNDEwNmJlYmIyYTIyLzAvRjhERjQwRTRDOTVGOUVCRjgxNDUzODcwNzM2OTk1 RTkxQkJCOTJGNy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAI6zBDI4PPWHNo+jVzbOU4iGuR0VbjJtuha/ 7B/rtnM9STlVW2AvKPhQlDU63H5H9FxEr7H5UXo5VTC/PbfHGwLEjCROFjpoHswH sgT05K0Ms9/ljKgsSNsmeUtSdyxf6+tIY4GD+7Yj981UFaoyfMcG11UTgnSTzetu /ExrXxiSmyD1dZmgNtUj/XDo+RelFC88NROqiZ9Fu16OTdWXTsu8NaZ9JxF20s+V hro9coGKwmo16H9h6U7+wCkc9N03O/00HKAw5KQ8GvlLx2IyS7Nzc4VlB/hnlvQ3 5s/fYftMLcNim8uhp+XQ6l6jedcj28hn+BXABn15kW0nqR0flao= -----END CERTIFICATE-----Generated at Tue Dec 23 17:16:58 2025 by rpki-client